System, method, and service for performing unified broadcast encryption and traitor tracing for digital content

Abstract

A unified broadcast encryption system divides a media key tree into S subtrees, divides digital content into segments, and converts some of the segments into variations; the number of segments and variations is q. The system subdivides each of the subtrees into q / |S| subdivided subtrees, assigns a key media variant to each of the subdivided subtrees, and generates a unified media key block (MKBu). The system decrypts digital content by obtaining required key media variants from the MKBu, using the key media variant to find an entry in a variant key table, decrypt a title key, and locate a variant number from the variant key table. The system uses the variant number to identify which of the variations may be decrypted by the title key and uses the title key to decrypt segments and variations.

Description

FIELD OF THE INVENTION[0001]The present invention generally relates to preventing piracy of digital content in a broadcast encryption system. More specifically, the present system relates to identifying devices involved in piracy of digital content and revoking secret keys used to pirate protected digital content.BACKGROUND OF THE INVENTION[0002]The entertainment industry is in the midst of a digital revolution. Music, television, and movies are increasingly becoming digital, offering new advantages to the consumer in quality and flexibility. At the same time, since digital data can be perfectly and quickly copied, the digital revolution also comprises a threat. If consumers may freely copy entertainment content and offer that content on the Internet, the market for entertainment content may evaporate.[0003]The widespread transition of data from analog format to digital format has exacerbated problems relating to unauthorized copying and redistribution of protected digital content. ...

AI Technical Summary

Benefits of technology

[0015]The present system seamlessly combines a unified broadcast encryption system and a traitor tracing system to provide both good tracing and perfect revocation capability. The present system uses one set of keys (device keys) from a broadcast encryption system. The present system further employs additional media keys in a unified media key block (MKBu) instead of a single media key as is used in current broadcast encryption schemes. Those additional media keys replace the sequence keys typically used in a traitor tracing system. The content is prepared in a manner similar to a traitor tracing system, with additional variations of some chosen segments in the content. Processing this new unified media key block can directly obtain different valid media keys for different devices, ultimately enabling devices to play back the content through different variations in the content. In the conventional AACS system, devices have to process both the MKB and the SKB to obtain a media key variant; the device uses the media key variant to process a segment of the content that has more than one variation.

[0017]When probing a clone device in order to trace which device keys are in the clone, the present system enables anonymous attack traceability of similar quality as that of a sequence key system. In a conventional system, the forensic MKB probing can only determine whether or not the clone plays back the content. In the present system, forensic unified MKB probing can also determine which variations the clone plays. The present system enables gaining more information from each probe than possible with conventional systems.

[0020]The present system may be embodied in a utility program such as a unified broadcast encryption utility program. The present system provides a method for the user to provide content for encryption and then invoke the unified broadcast encryption utility to divide the content into segments, with some of the segments replaced by a number of possible variants, and then encrypt the segments using a unified media key block and variant key table. The unified broadcast encryption utility provides the unified media key block and the variant key table for use by authorized media players in decrypting the encrypted content. The present system further provides a method for the user to provide a clone or recovered pirated encrypted content to the unified broadcast encryption utility. The unified broadcast encryption utility traces the traitor by identifying a variation and a subtree of the unified media key block used in the clone or used to generate the pirated movie. The unified broadcast encryption utility then revokes the subtree in any future unified media key blocks, preventing future piracy by the traced traitor.

Problems solved by technology

At the same time, since digital data can be perfectly and quickly copied, the digital revolution also comprises a threat.

The widespread transition of data from analog format to digital format has exacerbated problems relating to unauthorized copying and redistribution of protected digital content.

This piracy is a major concern and expense for content providers; to this end, industry consortia such as the 4C Entity () and AACSLA () have been formed.

The consequences of accidental or malicious disclosure of the long-lived secret keys are grave; loss of these secrets can lead total breakdown of the copy protection schemes the secrets support and to potentially huge monetary loss for the participants of the copy protection scheme.

One possible pirate attack on this system is that attackers reverse-engineer their devices, extract device keys from the devices, and build a clone device using those extracted device keys.

Alas, this solution is not feasible because of the excessive computing effort and transmission bandwidth required to prepare and transmit individualized movies.

Utilizing two separate systems requires additional storage on media and calculation by the media device, affecting performance of a digital content system.

Furthermore, deploying two separate systems is inefficient and time consuming.

However, this type of tracing based on forensic MKBs may take an excess amount of time and the scheme can be overwhelmed.

On the other hand, using sequence key blocks provides good tracing, but revocation is limited.

The need for such a solution has heretofore remained unsatisfied.

Images